Anotações sobre o Bastion Host para ajudar na preparação das certificações AWS.
Até o momento as anotações são para as certificações abaixo:
Anotações gerais
- Instância sempre na Subnet Publica
SSH Agent Forwarding
- Copiar a public key para as instâncias que serão acessadas
Step 1: Create Public/Private Key in Remote Client EC2
ssh-keygen
Step 2: Setup Authentication
- Copy the contents of public key form remote-client to the
~/.ssh/authorized_keys file of both Bastion and Private EC2.
Step 3: Use SSH Agent Forwarding
- Run the following commands on the remote-client EC2 instance
Step 4: Test the Setup
- From remote-client EC2, run the following command:
ssh -A [BASTION-EC2-IP]
- Once you are logged into Bastion, try to connect to Private EC2
ssh [IP-OF-PRIVATE-EC2]
Top comments (0)